CVE-2021-29961
First published: Tue Jun 01 2021(Updated: )
When styling and rendering an oversized <select> element, Firefox did not apply correct clipping which allowed an attacker to paint over the user interface.
Credit: security@mozilla.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mozilla Firefox | <89 | 89 |
| Mozilla Firefox | >=78.11.0<89.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2021-29961.
What is the title of the vulnerability?
The title of the vulnerability is 'When styling and rendering an oversized <select> element Firefox did not apply correct clipping which allowed an attacker to paint over the user interface.'
What is the affected software?
The affected software is Mozilla Firefox version up to exclusive version 89.
What is the severity of the vulnerability?
The severity of the vulnerability is medium.
How can I fix the vulnerability?
To fix the vulnerability, update your Mozilla Firefox browser to version 89 or later.
- agent/references
- agent/type
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/author
- agent/softwarecombine
- agent/description
- collector/mozilla-advisory
- agent/software-canonical-lookup-request
- source/Mozilla
- agent/software-canonical-lookup
- collector/nvd-index
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- agent/trending
- vendor/mozilla
- canonical/mozilla firefox
- version/mozilla firefox/78.11.0